Agent Guardrails — AI 代理守护: 机制化规则强制执行

Name: Agent Guardrails — AI 代理守护: 机制化规则强制执行
Author: olmmlo-cmd

olmmlo-cmd

Agent Guardrails — AI 代理守护: 机制化规则强制执行

v1.0.0

防止 AI 代理悄悄规避您的规则。通过 git hooks、秘密检测、部署验证和导入注册表实现机制化强制执行。适用于 Claude Code、Clawdbot、Cursor 等 AI 代理项目，确保代码质量、安全性和部署一致性。

0· 697·3 当前·3 累计

by @olmmlo-cmd·MIT-0

AI模型访问智能体代码生成安全

下载技能包

License

MIT-0

最后更新

2026/2/26

安全扫描

VirusTotal

无害

查看报告

OpenClaw

可疑

medium confidence

该技能的文件和指令大致符合其声明的目标（安装 git hooks 和执行脚本），但存在一些不一致和行为模式（自更新反馈循环、发布助手和未声明的要求），建议在安装前进行手动审查。

评估建议

["在执行前，检查脚本（install.sh、pre-create-check.sh 等）确保只进行预期的文件系统/Git 操作，检查网络调用、curl/wget 或隐藏命令。","安装前备份仓库和提交状态，安装会将 hooks 复制到 .git/hooks 中，可能阻止提交直到检查通过。","特别注意反馈循环和发布助手：提交检测创建任务，自动提交/发布脚本可能使用本地凭据执行 git 提交/推送/发布。","若要安全试用：安装到隔离/测试仓库，手动运行脚本，验证行为（可能的 dry-run），然后再部署到生产仓库。","元数据不匹配：SKILL.md 指明需要 bash 和 git，但注册表元数据未列出 —— 将其视为包装疏漏，确保 bash/git 可用并理解脚本效果。"]...

详细分析 ▾

ℹ 用途与能力

技能名称/描述（通过 git hooks、秘密检测、部署检查的机制化强制执行）与包含的脚本和文档一致。

⚠ 指令范围

SKILL.md 指导安装脚本和 git hooks 到用户的项目中。

✓ 安装机制

这是一个仅包含指令的技能，附带 shell 脚本；没有从未知 URL 下载或包注册表安装。

ℹ 凭证需求

技能在注册表元数据中声明没有所需的环境变量，这与它没有明确请求令牌相符。

⚠ 持久化与权限

技能安装持久的 git hooks 和脚本到项目中。

安全有层次，运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发，无需署名。

查看条款 ↗

运行时依赖

无特殊依赖

版本

latestv1.0.02026/2/17

agent-guardrails 1.1.0 引入了用于 AI 代理项目标准的强健机制强制执行工具。添加了自动 git hooks 和脚本用于代码、部署和秘密强制执行。提供了秘密检测、导入注册表创建和部署验证工具。引入了自验证反馈循环和技能更新的元强制执行。提供了详细文档、模板和工作流指南（英文和中文）。支持 Claude Code、Clawdbot、Cursor 和任何 AI 代理项目。

● 无害

安装命令点击复制

官方npx clawhub@latest install agent-guardrails

镜像加速npx clawhub@latest install agent-guardrails --registry https://cn.clawhub-mirror.com

技能文档

请参考原 SKILL.md 文档（中文翻译见 references/SKILL_CN.md），以下为关键部分中文翻译：

# 代理守护: 机制化强制执行...

快速开始

...

执行流程 ...

工具提供 ...

资产 ...

参考 ...

中文文档 请见 references/SKILL_CN.md。

Mechanical enforcement for AI agent project standards. Rules in markdown are suggestions. Code hooks are laws.

Quick Start

cd your-project/
bash /path/to/agent-guardrails/scripts/install.sh

This installs the git pre-commit hook, creates a registry template, and copies check scripts into your project.

Enforcement Hierarchy

Code hooks (git pre-commit, pre/post-creation checks) — 100% reliable
Architectural constraints (registries, import enforcement) — 95% reliable
Self-verification loops (agent checks own work) — 80% reliable
Prompt rules (AGENTS.md, system prompts) — 60-70% reliable
Markdown rules — 40-50% reliable, degrades with context length

Tools Provided

Scripts

Script	When to Run	What It Does
`install.sh`	Once per project	Installs hooks and scaffolding
`pre-create-check.sh`	Before creating new `.py` files	Lists existing modules/functions to prevent reimplementation
`post-create-validate.sh`	After creating/editing `.py` files	Detects duplicates, missing imports, bypass patterns
`check-secrets.sh`	Before commits / on demand	Scans for hardcoded tokens, keys, passwords
`create-deployment-check.sh`	When setting up deployment verification	Creates .deployment-check.sh, checklist, and git hook template
`install-skill-feedback-loop.sh`	When setting up skill update automation	Creates detection, auto-commit, and git hook for skill updates

Assets

Asset	Purpose
`pre-commit-hook`	Ready-to-install git hook blocking bypass patterns and secrets
`registry-template.py`	Template `__init__.py` for project module registries

References

File	Contents
`enforcement-research.md`	Research on why code > prompts for enforcement
`agents-md-template.md`	Template AGENTS.md with mechanical enforcement rules
`deployment-verification-guide.md`	Full guide on preventing deployment gaps
`skill-update-feedback.md`	Meta-enforcement: automatic skill update feedback loop
`SKILL_CN.md`	Chinese translation of this document

Usage Workflow

Setting up a new project

bash scripts/install.sh /path/to/project

Before creating any new .py file

bash scripts/pre-create-check.sh /path/to/project

Review the output. If existing functions cover your needs, import them.

After creating/editing a .py file

bash scripts/post-create-validate.sh /path/to/new_file.py

Fix any warnings before proceeding.

Setting up deployment verification

bash scripts/create-deployment-check.sh /path/to/project

This creates:

.deployment-check.sh - Automated verification script
DEPLOYMENT-CHECKLIST.md - Full deployment workflow
.git-hooks/pre-commit-deployment - Git hook template

Then customize:

Add tests to .deployment-check.sh for your integration points
Document your flow in DEPLOYMENT-CHECKLIST.md
Install the git hook

See references/deployment-verification-guide.md for full guide.

Adding to AGENTS.md

Copy the template from references/agents-md-template.md and adapt to your project.

中文文档 / Chinese Documentation

See references/SKILL_CN.md for the full Chinese translation of this skill.

Common Agent Failure Modes

1. Reimplementation (Bypass Pattern)

Symptom: Agent creates "quick version" instead of importing validated code. Enforcement: pre-create-check.sh + post-create-validate.sh + git hook

2. Hardcoded Secrets

Symptom: Tokens/keys in code instead of env vars. Enforcement: check-secrets.sh + git hook

3. Deployment Gap

Symptom: Built feature but forgot to wire it into production. Users don't receive benefit. Example: Updated notify.py but cron still calls old version. Enforcement: .deployment-check.sh + git hook

This is the hardest to catch because:

Code runs fine when tested manually
Agent marks task "done" after writing code
Problem only surfaces when user complains

Solution: Mechanical end-to-end verification before allowing "done."

4. Skill Update Gap (META - NEW)

Symptom: Built enforcement improvement in project but forgot to update the skill itself. Example: Created deployment verification for Project A, but other projects don't benefit because skill wasn't updated. Enforcement: install-skill-feedback-loop.sh → automatic detection + semi-automatic commit

This is a meta-failure mode because:

It's about enforcement improvements themselves
Without fix: improvements stay siloed
With fix: knowledge compounds automatically

Solution: Automatic detection of enforcement improvements with task creation and semi-automatic commits.

Key Principle

Don't add more markdown rules. Add mechanical enforcement.
If an agent keeps bypassing a standard, don't write a stronger rule — write a hook that blocks it.

>

Corollary: If an agent keeps forgetting integration, don't remind it — make it mechanically verify before commit.

数据来源：ClawHub ↗ · 中文优化：龙虾技能库

OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险，如需更匹配、更安全的方案，建议联系付费定制

了解定制服务

License

运行时依赖

版本

安装命令 点击复制

技能文档

Quick Start

Enforcement Hierarchy

Tools Provided

Scripts

Assets

References

Usage Workflow

Setting up a new project

Before creating any new .py file

After creating/editing a .py file

Setting up deployment verification

Adding to AGENTS.md

中文文档 / Chinese Documentation

Common Agent Failure Modes

1. Reimplementation (Bypass Pattern)

2. Hardcoded Secrets

3. Deployment Gap

4. Skill Update Gap (META - NEW)

Key Principle

安装命令点击复制